Description
This typically indicates the parent process was compromised via an exploit or macro.
plan-515372324.xlsb
155KB
210629-ya5cdesfp2
08e52afbefa423fb9f1ea0af88a4880e
2d688dfee28f75553bc1d3633f891d2e70e0408b
aaa32ff3e41c61fe828f0850e702f5ed7ffd6177c4bf80ed15324525537f44cd
7a5400ec826ecaa0fa6a8beb9022bd9e918f11cf97e57d747477720889f7203af983620e2f7b543fb1ff5cc5a9eff13447d6353506c862dfe2ebd23b7a63dee8
Language | xlm4.0 |
Source |
|
URLs |
xlm40.dropper
https://khangland.pro/v8gEDeSB/sun.html xlm40.dropperhttps://jaipurbynite.com/stLdQs9R53/sun.htm |
plan-515372324.xlsb
08e52afbefa423fb9f1ea0af88a4880e
155KB
2d688dfee28f75553bc1d3633f891d2e70e0408b
aaa32ff3e41c61fe828f0850e702f5ed7ffd6177c4bf80ed15324525537f44cd
7a5400ec826ecaa0fa6a8beb9022bd9e918f11cf97e57d747477720889f7203af983620e2f7b543fb1ff5cc5a9eff13447d6353506c862dfe2ebd23b7a63dee8
This typically indicates the parent process was compromised via an exploit or macro.